$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1065574560142786561/0/3232332e3136302e3134382e302f32322d3234203d3e203536303434.roa File: 3232332e3136302e3134382e302f32322d3234203d3e203536303434.roa (raw, json) Hash identifier: +qdbBIeNDO4crmFgpfhKTmUq4AoSgnOsUytE+ehxHJI= Subject key identifier: 52:40:59:67:A1:E5:88:9C:18:4A:9D:74:3C:07:39:1D:B7:F9:D9:0D Certificate issuer: /CN=CDD55F3D78FC75753FF9C6C826A7D81AA5EBEEB7 Certificate serial: 6CB62E6AECEF0EE5BB56A18EF77591F9E4902686 Authority key identifier: CD:D5:5F:3D:78:FC:75:75:3F:F9:C6:C8:26:A7:D8:1A:A5:EB:EE:B7 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/CDD55F3D78FC75753FF9C6C826A7D81AA5EBEEB7.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1065574560142786561/0/3232332e3136302e3134382e302f32322d3234203d3e203536303434.roa Signing time: Wed 27 May 2026 07:34:55 +0000 ROA not before: Wed 27 May 2026 07:29:55 +0000 ROA not after: Wed 26 May 2027 07:34:55 +0000 asID: 56044 IP address blocks: 223.160.148.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1065574560142786561/0/CDD55F3D78FC75753FF9C6C826A7D81AA5EBEEB7.crl rsync://rpki-rps.cnnic.cn/repo/A1065574560142786561/0/CDD55F3D78FC75753FF9C6C826A7D81AA5EBEEB7.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/CDD55F3D78FC75753FF9C6C826A7D81AA5EBEEB7.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 May 2026 14:42:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6c:b6:2e:6a:ec:ef:0e:e5:bb:56:a1:8e:f7:75:91:f9:e4:90:26:86 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CDD55F3D78FC75753FF9C6C826A7D81AA5EBEEB7 Validity Not Before: May 27 07:29:55 2026 GMT Not After : May 26 07:34:55 2027 GMT Subject: CN=52405967A1E5889C184A9D743C07391DB7F9D90D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:97:16:89:78:2c:17:f7:6e:39:0d:e9:08:f6:f5: 32:7b:91:3d:c1:3e:8f:95:61:f3:2d:95:ae:8d:02: e0:3f:ca:d3:73:5c:ac:69:4a:cd:40:b0:6f:f1:0b: 3c:14:36:bf:43:c4:07:25:e4:5b:ce:b1:e9:45:24: be:6c:94:18:e5:46:ed:8e:35:aa:a5:2b:22:2f:05: 69:93:87:bd:14:60:0c:4a:b0:f8:9d:3d:9c:5a:1a: 3b:1a:56:33:29:59:58:fa:eb:38:75:90:84:0c:37: 0c:0d:e3:52:1d:ee:a8:f9:af:6c:27:19:32:99:62: 11:d9:93:a6:b0:27:da:b0:e2:51:81:a1:25:bc:32: 82:0a:72:14:81:88:46:67:03:86:fe:57:40:83:92: db:fb:85:8f:ee:a7:bb:03:3c:17:dc:0a:3d:ee:b3: b3:0c:f5:65:c8:4a:2b:9a:98:88:9c:e2:11:e6:6d: 13:37:0a:38:e5:70:18:74:c7:3f:34:35:63:5c:d5: bf:b8:25:05:61:4c:da:1c:c6:3f:11:3f:14:47:3d: 2c:42:cd:a7:02:f4:f7:c9:aa:cb:02:c9:83:5c:fe: 6e:6b:95:b8:3e:d0:25:fd:5b:08:2b:e9:b0:8a:82: 5d:9c:40:55:79:33:b6:35:be:aa:d7:03:f4:8e:6d: 2a:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 52:40:59:67:A1:E5:88:9C:18:4A:9D:74:3C:07:39:1D:B7:F9:D9:0D X509v3 Authority Key Identifier: keyid:CD:D5:5F:3D:78:FC:75:75:3F:F9:C6:C8:26:A7:D8:1A:A5:EB:EE:B7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1065574560142786561/0/CDD55F3D78FC75753FF9C6C826A7D81AA5EBEEB7.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/CDD55F3D78FC75753FF9C6C826A7D81AA5EBEEB7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1065574560142786561/0/3232332e3136302e3134382e302f32322d3234203d3e203536303434.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 223.160.148.0/22 Signature Algorithm: sha256WithRSAEncryption 1d:60:1c:f8:af:7f:35:07:f3:97:9e:aa:f6:31:31:e1:9c:02: 45:70:43:5c:fe:e0:82:ce:22:e7:eb:54:e4:3d:43:68:d0:07: 02:ae:1b:cd:b4:e4:b2:96:7d:19:5b:c4:5c:a3:b1:5d:00:25: 6e:f4:9b:76:ef:16:fd:6b:3d:64:e2:c1:da:e2:ab:da:66:91: fc:fe:0b:8e:9f:46:63:b0:8f:9c:a8:f4:cf:60:91:6f:ca:66: 68:0b:2d:db:48:fa:d5:fb:eb:4a:ae:00:85:1f:42:ce:13:62: 56:32:b0:2d:d6:e0:f4:b6:02:7a:76:4b:31:54:e3:0f:b6:f7: ee:ac:dd:e2:69:c4:0c:66:ab:ad:42:d2:14:5d:f6:b6:76:df: 2b:cc:41:e5:56:7e:1d:f5:84:ac:95:f7:41:f7:63:b9:32:48: 41:0c:37:fe:fe:78:5b:96:41:3c:29:90:ea:43:14:14:84:68: 40:a5:11:31:5c:ac:37:84:28:78:05:6a:2e:bb:c2:0a:0d:9f: 5a:b4:9d:19:b5:ee:24:44:c7:c6:be:e1:83:c1:fa:67:6c:0f: 6b:c5:31:65:58:8b:bf:d7:1e:38:45:4f:64:1b:94:eb:0b:5a: 79:bd:6a:e5:2b:e7:62:81:4e:5f:ee:12:85:c7:1d:65:8c:bd: 03:ca:18:ad -----BEGIN CERTIFICATE----- MIIFDTCCA/WgAwIBAgIUbLYuauzvDuW7VqGO93WR+eSQJoYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQ0RENTVGM0Q3OEZDNzU3NTNGRjlDNkM4MjZBN0Q4MUFB NUVCRUVCNzAeFw0yNjA1MjcwNzI5NTVaFw0yNzA1MjYwNzM0NTVaMDMxMTAvBgNV BAMTKDUyNDA1OTY3QTFFNTg4OUMxODRBOUQ3NDNDMDczOTFEQjdGOUQ5MEQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCXFol4LBf3bjkN6Qj29TJ7kT3B Po+VYfMtla6NAuA/ytNzXKxpSs1AsG/xCzwUNr9DxAcl5FvOselFJL5slBjlRu2O NaqlKyIvBWmTh70UYAxKsPidPZxaGjsaVjMpWVj66zh1kIQMNwwN41Id7qj5r2wn GTKZYhHZk6awJ9qw4lGBoSW8MoIKchSBiEZnA4b+V0CDktv7hY/up7sDPBfcCj3u s7MM9WXISiuamIic4hHmbRM3CjjlcBh0xz80NWNc1b+4JQVhTNocxj8RPxRHPSxC zacC9PfJqssCyYNc/m5rlbg+0CX9Wwgr6bCKgl2cQFV5M7Y1vqrXA/SObSrZAgMB AAGjggIXMIICEzAdBgNVHQ4EFgQUUkBZZ6HliJwYSp10PAc5Hbf52Q0wHwYDVR0j BBgwFoAUzdVfPXj8dXU/+cbIJqfYGqXr7rcwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA2 NTU3NDU2MDE0Mjc4NjU2MS8wL0NERDU1RjNENzhGQzc1NzUzRkY5QzZDODI2QTdE ODFBQTVFQkVFQjcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvQ0RENTVGM0Q3OEZDNzU3NTNGRjlDNkM4MjZBN0Q4MUFBNUVCRUVCNy5jZXIw gZAGCCsGAQUFBwELBIGDMIGAMH4GCCsGAQUFBzALhnJyc3luYzovL3Jwa2ktcnBz LmNubmljLmNuL3JlcG8vQTEwNjU1NzQ1NjAxNDI3ODY1NjEvMC8zMjMyMzMyZTMx MzYzMDJlMzEzNDM4MmUzMDJmMzIzMjJkMzIzNDIwM2QzZTIwMzUzNjMwMzQzNC5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAt+glDANBgkqhkiG9w0BAQsFAAOCAQEAHWAc+K9/NQfzl56q9jEx 4ZwCRXBDXP7ggs4i5+tU5D1DaNAHAq4bzbTkspZ9GVvEXKOxXQAlbvSbdu8W/Ws9 ZOLB2uKr2maR/P4Ljp9GY7CPnKj0z2CRb8pmaAst20j61fvrSq4AhR9CzhNiVjKw Ldbg9LYCenZLMVTjD7b37qzd4mnEDGarrULSFF32tnbfK8xB5VZ+HfWErJX3Qfdj uTJIQQw3/v54W5ZBPCmQ6kMUFIRoQKURMVysN4QoeAVqLrvCCg2fWrSdGbXuJETH xr7hg8H6Z2wPa8UxZViLv9ceOEVPZBuU6wtaeb1q5SvnYoFOX+4ShccdZYy9A8oY rQ== -----END CERTIFICATE-----Generated at Fri May 29 23:01:46 2026 by rpki-client